#DataProtection

5 Ways to Save Your Organization From Cloud Security Threats

by

November 13, 2024 at 04:22PM Post-pandemic, organizations face challenges in cloud security due to its complexity, shared responsibility, and rise in multi-cloud usage. Attackers are using advanced technologies to exploit vulnerabilities. A proactive approach is essential, focusing on reducing attack surfaces, centralized threat investigation, tackling shadow IT, and emphasizing identity-based security for effective risk management. … Read more

Google AI Platform Bugs Leak Proprietary Enterprise LLMs

by

November 13, 2024 at 03:13PM Google fixed two vulnerabilities in its Vertex AI platform that could have allowed attackers to access proprietary models. Discovered by Palo Alto Networks, these flaws involved privilege escalation and model exfiltration. While threats were mitigated, researchers emphasize continued vigilance is needed to secure AI environments against potential manipulations and unauthorized … Read more

Ransomware fiends boast they’ve stolen 1.4TB from US pharmacy network

by

November 13, 2024 at 02:18PM American Associated Pharmacies (AAP) faces a potential ransomware attack by the Embargo group, claiming to have stolen 1.469 TB of data and demanding $1.3 million. AAP hasn’t confirmed the breach but reset all user passwords without explanation. The deadline to pay is November 20 to avoid data leaks. ### Meeting … Read more

CISO Forum Virtual Summit is Today

by

November 13, 2024 at 07:21AM The CISO Forum Virtual Summit is scheduled for November 13th at SecurityWeek’s Virtual Conference Center. **Meeting Takeaways:** 1. **Event Name:** CISO Forum Virtual Summit 2. **Date:** November 13th 3. **Location:** SecurityWeek’s Virtual Conference Center 4. **Note:** Post-event coverage or commentary titled “The post CISO Forum Virtual Summit is Today” was … Read more

High-Severity Vulnerabilities Patched in Zoom, Chrome 

by

November 13, 2024 at 07:21AM Zoom Apps released security updates addressing six vulnerabilities, while the stable version of Chrome 131 has rolled out with twelve security fixes. These updates aim to enhance protection against high-severity threats. ### Meeting Takeaways: 1. **Zoom Security Update**: – Resolved six security vulnerabilities in Zoom Apps. 2. **Chrome Update**: – … Read more

Comprehensive Guide to Building a Strong Browser Security Program

by

November 13, 2024 at 07:15AM The rise of SaaS and cloud environments has increased cybersecurity threats, particularly through browsers. LayerX released a guide, “Kickstarting Your Browser Security Program,” outlining steps for implementing browser security, including threat mapping, stakeholder collaboration, and gradual rollouts. Successful programs adapt to evolving risks, focusing on data protection and credential safety. … Read more

Middle East Cybersecurity Efforts Catch Up After Late Start

by

November 13, 2024 at 07:01AM Increased cyber threats and hacktivism in the Middle East have prompted countries to develop advanced cybersecurity regulations. Nations like Saudi Arabia and Qatar are building frameworks based on international standards to protect investments. However, uneven enforcement and a talent shortage hinder effectiveness, complicating compliance for companies operating in the region. … Read more

Air National Guardsman gets 15 years after splashing classified docs on Discord

by

November 12, 2024 at 07:11PM Jack Teixeira, a former Air National Guard member, was sentenced to 15 years in prison for stealing and sharing classified military secrets on Discord. His actions endangered national security, revealing sensitive information about U.S. operations and allies. Teixeira admitted to wrongdoing and was sentenced as a warning against such betrayals. … Read more

Pentagon Secrets Leaker Jack Teixeira Sentenced to 15 Years in Prison by a Federal Judge

by

November 12, 2024 at 04:51PM Jack Teixeira, who pleaded guilty in March to six counts of retaining and transmitting national defense information under the Espionage Act, has been sentenced to 15 years in prison by a federal judge. **Meeting Notes Takeaways:** 1. **Guilty Plea**: Teixeira pleaded guilty to six counts related to the willful retention … Read more

‘Cybersecurity issue’ at Food Lion parent blamed for US grocery mayhem

by

November 12, 2024 at 02:33PM Ahold Delhaize, owner of several US grocery chains, confirmed ongoing outages due to a cybersecurity issue affecting pharmacies and e-commerce. While stores remain open, some staff reported IT difficulties, including prescription refills and mismatched invoices. Investigations are ongoing, and the company has not confirmed data compromise or provided further updates. … Read more